Outdated certificates are a security threat

The faster digitization moves into all areas of life, the greater the importance of online services for the economy. At the same time, the number of cyberattacks continues to grow – at breakneck speed. Companies are increasingly facing cyber attacks, data thefts and industrial espionage. The result: financial losses created by reduced sales or damage to their image that could cost billions. When it comes to IT security, the time to fortify lines of defense has arrived.

SSL creates confidence

SSL certificates (secure sockets layer or TLS certificates (transport layer security)) are basic components of such defense lines. They facilitate secure data transmission and create a new foundation of trust. The digital ID lowers the risk of being lured to the wrong website by hackers, a maneuver that can be used to steal address or even account data. In online banking, encryption via HTTPS protocol with an SSL certificate is now widely used. Secure and reliable web connections are also essential in a business setting, including in online shopping from digitized catalogues, the orchestration of suppliers via online portals or the large intranets of major companies.

Google to clean house

But that is not all: Any company that has not kept pace with SSL developments runs the risk of seeing its online processes soon classified as insecure. In 2018, Google will withdraw authorization for a large number of older SSL certificates for security reasons. This process will affect all people who use Chrome as a browser – one-third of all Internet users, mind you. The transition will be done in stages starting with Chrome 66 and be concluded in fall 2018 with Chrome 70. Websites with outdated SSL certificates will no longer appear in search results, or will be displayed with a security warning.

Choose quality!

EV-TLS certificates. Made in Germany.

High-quality certificates with extended validation (EV) are highlighted in color in the address bars of web browsers.

Standard TeleSec ServerPass (wild card)An expanded version of the organization-validated standard SSL certificate that adds wild-card functionality by using an asterisk “*”

SAN TeleSec ServerPass (subject alternative names)Standard SSL certificates with up to 25 SAN entries

EV TeleSec ServerPass (extended validation)EV-SSL certificates linked to strict issuance guidelines and designation of the identity and address of the applicant as well as of the domain owner; company name appears in green in the URL line of the browser

With TeleSec ServerPass, T-Systems provides SSL certificates (and TLS certificates) for the reliable authentication, identification and encryption of Internet and intranet data. As a result, companies, consumers and public sector can guarantee data integrity and confidentiality in all web applications.

Digital ID card for online services

The highly effective security solution works like a digital ID card and covers all scenarios: from encrypted data exchanges and authentication in router networks to setting up TLS/SSL sessions, and VPN remote access. The encrypted connection is established via HTTPS, a method that makes it practically impossible for unauthorized third parties to access the transmitted data. A number of different security levels are offered, including organization-validated SSL certificates with information about the domain and owner or expanded verification, including an evaluation of business activity.

Top security “Made in Germany”

All SSL certificates are created on special hardware modules to which only trained, security-vetted employees have access. Certification is performed in Telekom's own trust center. As a result, the SSL certificates meet the highest security requirements – including for information that has been classified as top secret – and is suitable for both industry and the public sector.